Local Privilege Escalation via Symlink Attack in ocrodjvu 0.4.6-1 on Debian GNU/Linux

Local Privilege Escalation via Symlink Attack in ocrodjvu 0.4.6-1 on Debian GNU/Linux

CVE-2010-4338 · MEDIUM Severity

AV:L/AC:H/AU:N/C:C/I:C/A:C

ocrodjvu 0.4.6-1 on Debian GNU/Linux allows local users to modify arbitrary files via a symlink attack on temporary files that are generated when Cuneiform is invoked as the OCR engine.

Learn more about our Cis Benchmark Audit For Debian Linux.